Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-09-02 10:59:29.914 00:00:10.329 TCP 23.104.0.1:47896 -> 1.101.0.1:3000 11 1507 1 2025-09-02 10:59:41.193 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:50030 10 6452 1 2025-09-02 11:00:30.285 00:00:10.371 TCP 23.104.0.1:50744 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:00:41.363 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:38850 10 6452 1 2025-09-02 11:01:30.710 00:00:10.331 TCP 23.104.0.1:43622 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:01:41.574 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:53968 10 6452 1 2025-09-02 11:02:06.075 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-02 11:02:06.041 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-02 11:02:31.112 00:00:10.330 TCP 23.104.0.1:42646 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:02:41.781 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:51314 10 6452 1 2025-09-02 10:59:22.385 00:05:00.689 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-02 11:03:31.487 00:00:10.362 TCP 23.104.0.1:40012 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:03:41.998 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:48106 10 6452 1 2025-09-02 11:00:22.382 00:05:00.695 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-02 11:04:31.889 00:00:10.371 TCP 23.104.0.1:49460 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:04:42.214 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:41542 10 6452 1 2025-09-02 11:05:32.304 00:00:10.345 TCP 23.104.0.1:36456 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:05:42.426 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:57016 10 6452 1 2025-09-02 11:06:32.697 00:00:10.369 TCP 23.104.0.1:47574 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:06:42.634 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:55564 10 6452 1 2025-09-02 11:07:06.686 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-02 11:07:06.504 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-02 11:07:33.115 00:00:10.363 TCP 23.104.0.1:52160 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:07:42.806 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:50162 10 6452 1 2025-09-02 11:08:33.518 00:00:10.415 TCP 23.104.0.1:35460 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:08:42.976 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:40346 10 6452 1 2025-09-02 11:05:22.389 00:05:00.687 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-02 11:09:33.975 00:00:10.372 TCP 23.104.0.1:40316 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:09:43.199 00:00:10.354 TCP 1.101.0.1:3000 -> 22.102.0.1:41680 10 6452 1 2025-09-02 11:06:22.388 00:05:00.692 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-02 11:10:34.386 00:00:10.367 TCP 23.104.0.1:47458 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:10:43.598 00:00:10.167 TCP 1.101.0.1:3000 -> 22.102.0.1:59632 10 6452 1 2025-09-02 11:11:34.793 00:00:10.364 TCP 23.104.0.1:56880 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:11:43.802 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:34768 10 6452 1 2025-09-02 11:12:06.215 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-02 11:12:06.235 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-02 11:12:35.198 00:00:10.324 TCP 23.104.0.1:39566 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:12:43.979 00:00:10.211 TCP 1.101.0.1:3000 -> 22.102.0.1:46592 13 6608 1 2025-09-02 11:13:35.563 00:00:10.364 TCP 23.104.0.1:43066 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:13:44.226 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:39238 10 6452 1 2025-09-02 11:14:35.968 00:00:10.338 TCP 23.104.0.1:33314 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:14:44.403 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:52184 10 6452 1 2025-09-02 11:11:22.394 00:05:00.698 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-02 11:15:36.344 00:00:10.369 TCP 23.104.0.1:54112 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:15:44.616 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:37684 10 6452 1 2025-09-02 11:12:22.392 00:05:00.703 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-02 11:16:36.750 00:00:10.325 TCP 23.104.0.1:44630 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:16:44.836 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:40228 10 6452 1 2025-09-02 11:17:06.351 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-02 11:17:06.543 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-02 11:17:37.113 00:00:10.323 TCP 23.104.0.1:45300 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:17:45.072 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:46732 10 6452 1 2025-09-02 11:18:37.471 00:00:10.363 TCP 23.104.0.1:45058 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:18:45.286 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:33988 10 6452 1 2025-09-02 11:19:37.871 00:00:10.378 TCP 23.104.0.1:59060 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:19:45.464 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:41242 10 6452 1 2025-09-02 11:20:38.288 00:00:10.359 TCP 23.104.0.1:38266 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:20:45.673 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:46030 10 6452 1 2025-09-02 11:17:22.395 00:05:00.722 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-02 11:21:38.685 00:00:10.370 TCP 23.104.0.1:52848 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:21:45.889 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:60658 10 6452 1 2025-09-02 11:22:06.416 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-02 11:22:06.630 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-02 11:18:22.393 00:05:00.728 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-02 11:22:39.100 00:00:10.363 TCP 23.104.0.1:44992 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:22:46.108 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:58458 10 6452 1 2025-09-02 11:23:39.497 00:00:10.363 TCP 23.104.0.1:43402 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:23:46.330 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:59588 10 6452 1 2025-09-02 11:24:39.903 00:00:10.363 TCP 23.104.0.1:56312 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:24:46.546 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:43740 10 6452 1 2025-09-02 11:25:40.306 00:00:10.324 TCP 23.104.0.1:36944 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:25:46.716 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:52302 10 6452 1 2025-09-02 11:26:40.669 00:00:10.366 TCP 23.104.0.1:33128 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:26:46.927 00:00:10.711 TCP 1.101.0.1:3000 -> 22.102.0.1:46204 10 6452 1 2025-09-02 11:27:06.666 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-02 11:27:06.815 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-02 11:23:22.395 00:05:00.723 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-02 11:27:41.108 00:00:10.358 TCP 23.104.0.1:35264 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:27:47.677 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:42640 10 6452 1 2025-09-02 11:24:22.393 00:05:00.728 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-02 11:28:41.507 00:00:10.329 TCP 23.104.0.1:51916 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:28:47.886 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:48348 10 6452 1 2025-09-02 11:29:41.869 00:00:10.370 TCP 23.104.0.1:56144 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:29:48.102 00:00:10.129 TCP 1.101.0.1:3000 -> 22.102.0.1:37646 10 6452 1 2025-09-02 11:30:42.276 00:00:10.373 TCP 23.104.0.1:60314 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:30:48.275 00:00:10.530 TCP 1.101.0.1:3000 -> 22.102.0.1:49850 10 6452 1 2025-09-02 11:31:42.685 00:00:10.365 TCP 23.104.0.1:36500 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:31:48.843 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:54260 10 6452 1 2025-09-02 11:32:06.784 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-02 11:32:06.777 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-02 11:32:43.127 00:00:10.370 TCP 23.104.0.1:53326 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:32:49.080 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:50082 10 6452 1 2025-09-02 11:29:22.397 00:05:00.723 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-02 11:33:43.534 00:00:10.365 TCP 23.104.0.1:48564 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:33:49.300 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:58640 10 6452 1 2025-09-02 11:30:22.396 00:05:00.727 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-02 11:34:43.943 00:00:10.383 TCP 23.104.0.1:57760 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:34:49.510 00:00:10.471 TCP 1.101.0.1:3000 -> 22.102.0.1:37682 10 6452 1 2025-09-02 11:35:44.402 00:00:10.363 TCP 23.104.0.1:50892 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:35:50.037 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:51562 10 6452 1 2025-09-02 11:36:44.803 00:00:10.374 TCP 23.104.0.1:58984 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:36:50.259 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:44584 10 6452 1 2025-09-02 11:37:06.830 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-02 11:37:06.734 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-02 11:37:45.214 00:00:10.367 TCP 23.104.0.1:42588 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:37:50.492 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:33020 10 6452 1 2025-09-02 11:38:45.621 00:00:10.380 TCP 23.104.0.1:38826 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:38:50.717 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:56978 10 6452 1 2025-09-02 11:35:22.398 00:05:00.724 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-02 11:39:46.065 00:00:10.367 TCP 23.104.0.1:43284 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:39:50.950 00:00:10.207 TCP 1.101.0.1:3000 -> 22.102.0.1:37098 12 6556 1 2025-09-02 11:36:22.396 00:05:00.730 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-02 11:40:46.468 00:00:10.364 TCP 23.104.0.1:43272 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:40:51.207 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:53688 10 6452 1 2025-09-02 11:41:51.431 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:59986 10 6452 1 2025-09-02 11:41:46.867 00:00:10.454 TCP 23.104.0.1:34770 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:42:06.853 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-02 11:42:06.698 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-02 11:42:51.641 00:00:10.211 TCP 1.101.0.1:3000 -> 22.102.0.1:33984 12 10367 1 2025-09-02 11:42:47.363 00:00:10.439 TCP 23.104.0.1:58952 -> 1.101.0.1:3000 15 1926 1 2025-09-02 11:43:47.844 00:00:10.379 TCP 23.104.0.1:46802 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:43:51.887 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:60956 10 6452 1 2025-09-02 11:44:48.260 00:00:10.364 TCP 23.104.0.1:43026 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:44:52.114 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:57458 10 6452 1 2025-09-02 11:41:22.398 00:05:00.725 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-02 11:45:48.666 00:00:10.325 TCP 23.104.0.1:41626 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:45:52.335 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:53490 10 6452 1 2025-09-02 11:42:22.396 00:05:00.730 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-02 11:46:49.024 00:00:10.364 TCP 23.104.0.1:40446 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:46:52.555 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:49570 10 6452 1 2025-09-02 11:47:07.110 00:00:00.034 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-02 11:47:07.188 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-02 11:47:49.434 00:00:10.368 TCP 23.104.0.1:56912 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:47:52.765 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:35992 10 6452 1 2025-09-02 11:48:49.838 00:00:10.396 TCP 23.104.0.1:49844 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:48:52.982 00:00:10.204 TCP 1.101.0.1:3000 -> 22.102.0.1:34012 10 6452 1 2025-09-02 11:49:50.269 00:00:10.652 TCP 23.104.0.1:40698 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:49:53.225 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:33534 10 6452 1 2025-09-02 11:50:50.953 00:00:10.370 TCP 23.104.0.1:38860 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:50:53.437 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:45840 10 6452 1 2025-09-02 11:47:22.401 00:05:00.723 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-02 11:51:51.354 00:00:10.321 TCP 23.104.0.1:58842 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:51:53.607 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:49514 10 6452 1 2025-09-02 11:52:06.864 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-02 11:52:07.330 00:00:00.025 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-02 11:48:22.399 00:05:00.728 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-02 11:52:51.715 00:00:10.734 TCP 23.104.0.1:49248 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:52:53.815 00:00:10.798 TCP 1.101.0.1:3000 -> 22.102.0.1:51438 10 6452 1 2025-09-02 11:53:54.652 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:42638 10 6452 1 2025-09-02 11:53:52.494 00:00:10.332 TCP 23.104.0.1:58870 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:54:54.865 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:54906 10 6452 1 2025-09-02 11:54:52.867 00:00:10.369 TCP 23.104.0.1:49580 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:55:55.089 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:37728 10 6452 1 2025-09-02 11:55:53.278 00:00:10.365 TCP 23.104.0.1:60720 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:56:55.305 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:55970 10 6452 1 2025-09-02 11:56:53.678 00:00:10.369 TCP 23.104.0.1:58600 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:57:07.222 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-02 11:57:07.155 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-02 11:53:22.402 00:05:00.723 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-02 11:57:55.484 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:52232 10 6452 1 2025-09-02 11:57:54.104 00:00:10.323 TCP 23.104.0.1:33020 -> 1.101.0.1:3000 11 1507 1 2025-09-02 11:54:22.400 00:05:00.728 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 Summary: total flows: 162, total bytes: 494983, total packets: 1562, avg bps: 1099, avg pps: 0, avg bpp: 316 Time window: 2025-09-02 10:59:22 - 2025-09-02 11:59:23 Total flows processed: 162, passed: 162, Blocks skipped: 0, Bytes read: 16912 Sys: 0.0035s User: 0.0018s Wall: 0.0037s flows/second: 43267.8 Runtime: 0.0038s